darkcomet | 8da107ea5a07ea1a4ab6c033782d8c0df570f788559d3c6c3b72d452b347e583 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

00d119fc46...97.exe

windows7-x64

7

00d119fc46...97.exe

windows10-2004-x64

Sharing

General

Target

00d119fc464e81f503dfe92e407e8297
Size

2.3MB
Sample

231225-c9ncaschhn
MD5

00d119fc464e81f503dfe92e407e8297
SHA1

f57eb560df81f870b6fb865337c273486dfdc721
SHA256

8da107ea5a07ea1a4ab6c033782d8c0df570f788559d3c6c3b72d452b347e583
SHA512

0834f67cf3e77435279392064ae0d27c70ba01f6113cf65359e5b6887dfaa0c585485f19eb5a7e43c0acd52cdf32c76a2b945c688ccde293f78c17c342373131
SSDEEP

49152:IXWpU1Dost4jUlU/fzcINWRVE67RsNKWFT+yAirGCz:IXWps4jCV90TFTFz6+

Score

10^/10

darkcomet rat trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

00d119fc464e81f503dfe92e407e8297.exe

Resource

win7-20231215-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

00d119fc464e81f503dfe92e407e8297.exe

Resource

win10v2004-20231215-en

darkcomet rat trojan

windows10-2004-x64

1 signatures

150 seconds

Malware Config

Targets

- Target
  
  00d119fc464e81f503dfe92e407e8297
- Size
  
  2.3MB
- MD5
  
  00d119fc464e81f503dfe92e407e8297
- SHA1
  
  f57eb560df81f870b6fb865337c273486dfdc721
- SHA256
  
  8da107ea5a07ea1a4ab6c033782d8c0df570f788559d3c6c3b72d452b347e583
- SHA512
  
  0834f67cf3e77435279392064ae0d27c70ba01f6113cf65359e5b6887dfaa0c585485f19eb5a7e43c0acd52cdf32c76a2b945c688ccde293f78c17c342373131
- SSDEEP
  
  49152:IXWpU1Dost4jUlU/fzcINWRVE67RsNKWFT+yAirGCz:IXWps4jCV90TFTFz6+
Score

10^/10

darkcomet rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

darkcometrattrojan

© 2018-2025

Terms | Privacy